As people were scrambling to patch the Shellshock bug, some pundits believe the haste can cause additional confusion. Critics believe Apple’s initial patch was incomplete and the initial Red Hat patch was ruled inadequate.
What made Shellshock so difficult to address?
Listen to our latest security slice podcast and hear Tyler Reguly, Lamar Bailey and Craig Young discuss why the open source community has a different set of security expectations, why patch management programs won’t solve the Shellshock patch problem completely and the role Heartbleed played in our collective response to the Bash bug.
CLICK HERE TO LISTEN TO THE PODCAST
- Security Slice: Practical Advice to Limit Insider Threats
- Security Slice: Stirring the HoneyPot
- Security Slice: Bad News Bash
- Security Slice: Point-of-Sale System Shock
Check out Tripwire SecureScan™, a free, cloud-based vulnerability management service for up to 100 Internet Protocol (IP) addresses on internal networks. This new tool makes vulnerability management easily accessible to small and medium-sized businesses that may not have the resources for enterprise-grade security technology – and it detects the Shellshock and Heartbleed vulnerability.
The Executive’s Guide to the Top 20 Critical Security Controls
Tripwire has compiled an e-book, titled The Executive’s Guide to the Top 20 Critical Security Controls: Key Takeaways and Improvement Opportunities, which is available for download [registration form required].
Title image courtesy of ShutterStock